Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a0c816-765e-4d1a-866b-b3f0942e69ec/1/1o1T5bH4jYQnRZCh2w_6JrdegMk.roa
File: 1o1T5bH4jYQnRZCh2w_6JrdegMk.roa (raw, json)
Hash identifier: jx/qDqwgdIM8C61kyYrtMLPdvbSqH9YeEfF96kzbwIE=
Subject key identifier: D6:8D:53:E5:B1:F8:8D:84:27:45:90:A1:DB:0F:FA:26:B7:5E:80:C9
Certificate issuer: /CN=fa7468dccae43c239f8530e8235e3a2d4fcd3e73
Certificate serial: 0189AC8CF7E855E54002FE338D933F3A1C7E
Authority key identifier: FA:74:68:DC:CA:E4:3C:23:9F:85:30:E8:23:5E:3A:2D:4F:CD:3E:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-nRo3MrkPCOfhTDoI146LU_NPnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a0c816-765e-4d1a-866b-b3f0942e69ec/1/1o1T5bH4jYQnRZCh2w_6JrdegMk.roa
Signing time: Mon 31 Jul 2023 15:24:26 +0000
ROA not before: Mon 31 Jul 2023 15:24:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208873
IP address blocks: 94.127.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ac:8c:f7:e8:55:e5:40:02:fe:33:8d:93:3f:3a:1c:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa7468dccae43c239f8530e8235e3a2d4fcd3e73
Validity
Not Before: Jul 31 15:24:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d68d53e5b1f88d84274590a1db0ffa26b75e80c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:28:45:dc:c5:35:81:12:20:18:c5:06:96:c1:
b1:2f:17:15:22:13:2d:2c:02:a7:d6:e3:74:bc:a5:
c6:67:99:df:39:1d:59:bd:85:25:67:18:2e:a2:0f:
93:62:03:f4:ba:d6:e2:2c:ae:8b:6f:56:7c:db:8e:
8b:b9:07:93:f4:4f:42:bb:f2:ce:61:5a:7e:3c:58:
1d:d5:0e:ab:b6:7d:e0:65:8a:e9:99:5d:ef:44:0f:
13:97:5c:af:5e:dd:de:7e:63:67:d3:44:66:b0:97:
ff:bf:6e:f7:1b:e6:89:43:55:82:41:a9:a2:76:7f:
2a:a4:9c:cc:3a:9a:52:42:94:79:c5:f3:14:7b:97:
09:cb:60:82:fd:ab:a3:09:3a:ce:ef:11:38:24:f3:
91:fb:67:eb:e5:f3:7d:5b:06:dd:75:04:56:8d:d4:
f6:5d:b9:5c:4b:3f:79:03:1d:5d:32:72:f8:f0:e6:
3b:fe:96:ac:3d:24:a0:9d:2e:9a:a7:54:b1:ea:dd:
b1:87:79:83:b0:d6:d5:df:52:18:74:ae:10:10:5a:
14:a6:55:2a:43:7f:48:24:4e:31:93:43:dc:e3:57:
e3:09:e1:32:3d:20:ce:db:63:40:1f:26:db:76:db:
f8:ac:84:4a:46:b6:ad:c1:8a:1b:53:03:d9:98:8d:
99:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:8D:53:E5:B1:F8:8D:84:27:45:90:A1:DB:0F:FA:26:B7:5E:80:C9
X509v3 Authority Key Identifier:
keyid:FA:74:68:DC:CA:E4:3C:23:9F:85:30:E8:23:5E:3A:2D:4F:CD:3E:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-nRo3MrkPCOfhTDoI146LU_NPnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a0c816-765e-4d1a-866b-b3f0942e69ec/1/1o1T5bH4jYQnRZCh2w_6JrdegMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a0c816-765e-4d1a-866b-b3f0942e69ec/1/1-nRo3MrkPCOfhTDoI146LU_NPnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.127.236.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:97:fc:6f:78:7d:b4:c3:fb:58:34:c6:ac:2d:ff:6f:5b:af:
4e:72:b3:eb:b1:25:3e:77:9a:f1:91:0f:f7:5c:58:0f:ef:fc:
f0:d3:09:41:97:4c:d0:d9:78:e0:a9:25:af:49:fd:1c:28:ae:
52:e2:e4:8b:39:26:92:ea:31:82:e7:32:26:d7:da:a6:b2:c9:
13:11:28:ee:84:6f:b3:d1:22:16:a1:a2:68:5d:dd:96:f9:19:
fc:b3:f8:34:29:f0:48:11:69:6c:5d:98:5c:c5:d1:bc:c0:df:
d7:45:01:a5:ba:4e:67:e6:ae:6b:5c:25:70:5f:63:a8:b7:9f:
ab:11:a1:fb:0d:a7:ac:79:f8:04:61:5d:8b:a2:02:d0:33:41:
28:92:af:f2:14:1c:aa:cb:ab:61:a4:7a:79:f8:97:e2:a2:af:
9d:79:2d:d6:28:0c:42:c4:d4:4e:26:05:c7:c1:c5:70:7c:ee:
67:28:f7:2d:22:fb:70:b7:93:08:f5:56:b5:29:65:ec:09:7a:
ec:d0:90:3a:51:00:fe:9e:d5:bf:a6:dd:33:ca:52:dc:3f:a4:
9b:6d:35:1e:e1:ee:b3:54:d2:8d:a5:91:c7:9f:ec:cb:db:78:
92:50:14:aa:c9:45:13:4e:1e:02:27:0b:fe:ba:b8:70:cd:aa:
61:5c:7d:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:34 2024 by rpki-client on console-fra.rpki-client.org